Installed new Policy CA certificate but don't want to use it now - Can this be removed from CA as it not shows in Manage AD containers ..
How to remove this certificate from CA
Installed new Policy CA certificate but don't want to use it now - Can this be removed from CA as it not shows in Manage AD containers ..
How to remove this certificate from CA
Hi,
Welcome to share your current situation if there are any updates.
Please feel free to let us know if you need further assistance.
Best Regards,
Hi,
Not sure how your PKI environment is deployed. If possible, you can tell more information about the environment.
Based on my understanding, CA certificate can't be deleted if it was not expired.
Do you want to delete the policy CA certificate from the policy ca or the sub-issue CAs?
Best Regards,
Hi FanFan
The certificate was signed from Root and installed on PolicyCA --- After publishing to AD PKIVIEW is not reflecting crt, AIA and CDP-
can we delete the policy CA cert Or revoke this certificate -- and submit "Renew CA Certificate" on PolicyCA and sign new certificate will this resolve the issue --- ?
Hi,
1, Would you please tell how did you deploy the PKI tier?
First Tier: Root CA (offline or online?)
Second Tier: Policy CA (offline or online?)
Third Tier: Issue CA (online?) domain joined?
2, Do you mean you wanted to renew the PolicyCA certificate, but you select the wrong option "submit the new request"
When you open the Certificate Authority, please check the PolicyCA properties and check how many certificates dispalyed:
3, You open the PKIVIEW on the issue CA, right? Would you please share a screenshot here? (Please hide the private information)

Hi,
As Cryptt32 said, it won't refresh until you renew your Issuing CA certificate which must be signed with new policy CA certificate.
Best Regards,
6 people are following this question.